Energy switch router

ABSTRACT

In various embodiments, a policy-based residential networked meter can be an energy switch router device (ESRD) that provides policy-based advanced metering, load control and shaping, energy services delivery and accounting, and secure web services interfaces and internetworking communications. The ESRD can be integrated and inter-related with advanced policy-based sensory, metrology, monitoring, control, recording, classification, prioritization, security, routing, and switching functions. The ESRD may be used to sense, measure, meter, and control electrical service flows to the utility service point at the customer premise, and may be configured and managed with one or more policy-based networking methods.

CROSS-REFERENCES TO RELATED APPLICATIONS

This application claims the benefit of and priority to U.S. ProvisionalApplication No. 60/905,269, filed Mar. 5, 2007, the entire disclosure ofwhich is hereby incorporated by reference for all purposes.

BACKGROUND OF THE INVENTION

Over the past ten to fifteen years, organizations have taken significantsteps towards defining the technical requirements, architectures,specifications, and open standards-based common information models forthe next generation intelligent transmission, distribution, and deliveryinfrastructures of various utilities, such as electricity, water, oil,and gas. These industry-wide advancements typically depict anintelligent network architecture that is predictive, self-adaptive,self-optimizing, fault-sensing, self-healing, and secure (e.g., anintelligent electric power grid infrastructure). The promises of theseintelligent electric grid network architectures are improvedreliability, enhanced energy delivery efficiencies, optimized energyconservation services, lower operational and maintenance costs, andhigher levels of customer interaction and satisfaction.

Electric Power Research Institute (EPRI) IntelliGrid^(SM) initiative isone attemot at creating the technical foundation for a smart power gridthat links electricity with communications and computer control toachieve tremendous gains in reliability, capacity, and customerservices. A major early product is the IntelliGrid Architecture, anopen-standards, requirements-based approach for integrating datanetworks and equipment that enables interoperability between productsand systems. This program provides utilities with the methodology, toolsand recommendations for standards and technologies when implementingsystems such as advanced metering, distribution automation, demandresponse, and wide-area measurement. The program also provides utilitieswith independent, unbiased testing of technologies and vendor products.

The problem of the current “intelligent” electric grid architectureslies in lack of definition on how to implement an end-to-end highlyautomated, distributed, electric power network that is predictive,self-adaptive, self-optimizing, fault-sensing, self-healing, and secure.The problem is as much a matter of scale and management, as it is amatter of how to design and implement and advanced electric powersensing, measurement, metering, and utility policy enforcement controllayer (e.g., transmission and distribution control, dynamic pricingenforcement, dynamic service delivery and accounting, etc.) over asecure communications network.

In order to implement a utility policy enforcement control layer, in ascalable and efficient manner, what is required is a more than apolicy-based network management platform. Policy-based networking wasoriginally developed in the mid/late 1990s and early 2000s within theDMTF and IETF standards organizations. The focus and development effortson policy-based networking, since its inception, have heretofore beenprimarily on enterprise and managed IP Services (e.g., VPN, QoS, VoIP .. . ). Policy-based networking methods, techniques, models, protocols,and policy server designs have yet to be applied to the subject domainof utility transmission & distribution network automation. In additionto the present invention of the Energy Switch Router, what is alsorequired to implement an intelligent electric grid is a highlydistributed, centrally managed, policy-based logic fabric into whichutility transmission and distribution network automation policies,methods, processes, controls, systems, devices, and utility customerprofiles are instantiated, managed, and deployed to form an intelligentsecure electric grid network.

Accordingly, what is desired are improved methods and apparatus forsolving some of the problems discussed above, while reducing furtherdrawbacks, some of which are discussed above.

BRIEF SUMMARY OF THE INVENTION

Embodiments of the present invention generally relate to the design,functionality, and instrumentation of a new class of utility networkdevices, energy switch routers, and to their role and use in thenetworking and automation of next generation utility transmission anddistribution networks and systems.

The emergent intelligent electric grid architectures require a new typeof networked utility device, one that can enforce transmission anddistribution automation policies in a highly distributed, centrallymanaged method, with the ability to support both real-time and nearreal-time communications. This new networked utility device needs tosupport advanced utility sensory and measurement functions, servicemonitoring and recording functions, service control and policyenforcement functions, web-based configuration and service deliveryinterfaces, and secure communications. Further, this new category ofutility network devices need to support an evolving set of openstandards-based sensory, measurement, metering, monitoring, recording,and control functions; transmission and distribution automation,metering, and control protocols; secure digital and system designs thatsupport a broad range of embedded computing, on-board memory and storagemodels; and advanced networking, routing, switching, policy, andsecurity functions.

In various embodiments a policy-based residential networked meter can bean energy switch router device (ESRD) that provides policy-basedadvanced metering, load control and shaping, energy services deliveryand accounting, and secure web services interfaces and internetworkingcommunications. The ESRD can be integrated and inter-related withadvanced policy-based sensory, metrology, monitoring, control,recording, classification, prioritization, security, routing, andswitching functions. The ESRD may be used to sense, measure, meter, andcontrol electrical service flows to the utility service point at thecustomer premise, and may be configured and managed with one or morepolicy-based networking methods.

In some embodiments, a policy-based residential networked meter canprovide support for advanced power sensing, metrology, monitoring,metering, control, recording, and reporting functions. The networkedmeter may provide a logic fabric for both real-time and near real-timepolicy enforcement and control of electric power service flows, events,services, messages, or the like. In addition, the policy-basedresidential networked meter may provide support for secureinternetworking communications across wide area, metropolitan area,local area, and home area networks. In further embodiments, thepolicy-based residential networked meter can be used to deliver voice,video and data broadband services. The policy-based residentialnetworked meter may provide support for policy-based managed serviceactivation, provisioning, configuration, monitoring, management andcontrol, and may enable support for policy-based managed serviceauthentication, authorization, accounting, reporting, control, andaccounting, both of which embodiments are configured and managed via webinterfaces.

In further embodiments, a policy-based residential networked meter canprovide the integration and interrelation of disparate methods,techniques, models, and algorithms in the independent fields of electricpower transmission and distribution automation, utility sensorymeasurement and recording, electricity service quality monitoring andcontrol, electric power load control and shaping, dynamic tariff/ratestructured metering and accounting, web configuration and energyservices interfaces, and secure policy-based internetworkingcommunications into a single device.

In various embodiments, a policy managed and controlled energy switchrouter device (ESRD) can interact with and participate in a highlydistributed and centrally managed policy control plane that may be usedto provision, configure, monitor, manage, and control an intelligentelectric grid network. An ESRD may be used to provide internetworkingservices, and secure network connection activation, authentication,authorization, and accounting functions for interfacing a policy-basedintelligent electric grid network to foreign wide area, metropolitanarea, local area, and home area networks.

Another embodiment of the present invention can also be used to providepolicy-based advanced utility distribution network automation and secureinternetworking functions that enable an intelligent electric gridnetwork that is predictive, self-adaptive, self-optimizing,fault-sensing, self-healing, and secure.

Another embodiment of the present invention can also be used to providepolicy-based advanced utility transmission network automation and secureinternetworking functions that enable an intelligent electric gridnetwork that is predictive, self-adaptive, self-optimizing,fault-sensing, self-healing, and secure.

Another embodiment of the present invention can also be used to providepolicy-based advanced utility generation automation and secureinternetworking functions that enable an intelligent electric gridnetwork that is predictive, self-adaptive, self-optimizing,fault-sensing, self-healing, and secure.

Another embodiment of the present invention can also be used to providepolicy-based advanced micro generation automation and secureinternetworking communications functions. In some embodiments, an ESRDcan be used to provide internetworking services, and secure networkconnection activation, authentication, authorization, and accountingfunctions for interfacing to a policy-based intelligent electric gridnetwork, or to foreign wide area, metropolitan area, local area, andhome area networks.

A further understanding of the nature and the advantages of theinventions disclosed herein may be realized by reference of theremaining portions of the specification and the attached drawings.

BRIEF DESCRIPTION OF THE DRAWINGS

In order to more fully understand the present invention, reference ismade to the accompanying drawings. Understanding that these drawings arenot to be considered limitations in the scope of the invention, thepresently described embodiments and the presently understood best modeof the invention are described with additional detail through use of theaccompanying drawings.

FIG. 1 is a block diagram illustrating five systems integrating utilitydistribution network automation and management, utility transmissionnetwork automation and management, utility generation automation andmanagement, and utility micro distribution automation and management infive separate embodiments according to the present invention;

FIG. 2 is a block diagram illustrating an energy switch router, in oneembodiment of the present invention, at the service delivery edge of theutility distribution network that is connected to the customer utilitydistribution network;

FIG. 3 is a block diagram illustrating the main functional elements ofthe energy switch router in one embodiment according to the presentinvention;

FIG. 4 is a block diagram illustrating the security, sensory, metrology,packet/frame/event classifier, route/switch/policy engines, androute/switch/policy state table components within the logic fabric ofthe energy switch router in one embodiment according to the presentinvention;

FIG. 5 is a block diagram illustrating the internetwork communicationsinterface components of the energy switch router in one embodimentaccording to the present invention;

FIG. 6 is a block diagram illustrating various applications that may beemployed by the energy switch router in one embodiment according to thepresent invention;

FIG. 7 is a block diagram illustrating five embodiments of an energyswitch router, in five embodiments of the present invention, within theutility distribution network, utility transmission network, utilitygeneration automation, and utility customer premises based micro utilitygeneration automation locations;

FIGS. 8A, 8B, and 8C are block diagrams illustrating the use of theenergy switch router for electric power distribution sensory, metrology,tariff/rate structured metering and accounting, service delivery andquality control, service monitoring and reporting, load control andshaping, utility policy enforcement, utility web services delivery, andsecure internetworking communications in one embodiment according to thepresent invention;

FIGS. 9A, 9B, and 9C are block diagrams illustrating the use of theenergy switch router for electric power distribution sensory, metrology,tariff/rate structured metering and accounting, service delivery andquality control, service monitoring and reporting, load control andshaping, utility policy enforcement, utility web services delivery, andsecure internetworking communications in one embodiment according to thepresent invention;

FIGS. 10A and 10B are block diagrams illustrating the use of the energyswitch router for electric power distribution sensory, metrology,tariff/rate structured metering and accounting, service delivery andquality control, service monitoring and reporting, load control andshaping, utility policy enforcement, utility web services delivery, andsecure internetworking communications in one embodiment according to thepresent invention;

FIGS. 91A and 91B are block diagrams illustrating the use of the energyswitch router for electric power distribution sensory, metrology,tariff/rate structured metering and accounting, service delivery andquality control, service monitoring and reporting, load control andshaping, utility policy enforcement, utility web services delivery, andsecure internetworking communications in one embodiment according to thepresent invention;

FIGS. 12A, 12B, and 12C are block diagrams illustrating the use of theenergy switch router for electric power distribution sensory, metrology,tariff/rate structured metering and accounting, service delivery andquality control, service monitoring and reporting, load control andshaping, utility policy enforcement, utility web services delivery, andsecure internetworking communications in one embodiment according to thepresent invention;

FIG. 13 is a flowchart of a method for configuration policy deploymentto an energy switch router, and the energy switch router's enforcementof the configuration policy in one embodiment according to the presentinvention;

FIG. 14 is a flowchart of a method for the configuration policyun-deployment from an energy switch router, and the energy switchrouter's subsequent enforcement of the changed policy state in oneembodiment according to the present invention;

FIG. 15 is a flowchart of a method for the deployment of a power qualityand control policy to an energy switch router, and the device'ssubsequent enforcement of the power quality and control policy in oneembodiment according to the present invention;

FIG. 16 is a block diagram depicting a policy networking-basedpredictive, self-adaptive, self-optimizing, fault-sensing, self-healing,and secure intelligent electric grid infrastructure in one embodimentaccording to the present invention;

FIG. 17 is a screenshot of an energy switch router secure web servicesinterface in one embodiment according to the present invention;

FIG. 18 is a is a block diagram depicting a utility distribution networkenergy switch router device that enables a policy networking-basedpredictive, self-adaptive, self-optimizing, fault-sensing, self-healing,and secure intelligent electric grid network, and which is configuredand accessed via secure web services interfaces, in one embodimentaccording to the present invention;

FIG. 19 is a is a block diagram depicting a utility transmission networkenergy switch router device that enables a policy networking-basedpredictive, self-adaptive, self-optimizing, fault-sensing, self-healing,and secure intelligent electric grid network, and which is configuredand accessed via secure web services interfaces, in one embodimentaccording to the present invention;

FIG. 20 is a is a block diagram depicting a utility generationautomation energy switch router device that enables a policynetworking-based predictive, self-adaptive, self-optimizing,fault-sensing, self-healing, and secure intelligent electric gridnetwork, and which is configured and accessed via secure web servicesinterfaces, in one embodiment according to the present invention;

FIG. 21 is a is a block diagram depicting a utility micro generationautomation energy switch router device that enables advanced microgeneration automation and secure internetworking communicationsfunctions, and which is configured and accessed via secure web servicesinterfaces; and

FIG. 23 is a block diagram of a computer system that may incorporateembodiments of the present invention.

DETAILED DESCRIPTION OF THE INVENTION

In general, tomorrow's intelligent electric grid network infrastructurewill include energy switch router devices located throughout thetransmission and distribution circuits, and at the edge of the servicedistribution network. In various embodiments, the residentialpolicy-based meter device embodiment of the present invention providesmore features than traditional measuring, metering, recording, andautomated reading. Specifically, the embodiment serves as an essentialinternetworked, intelligent, sensor, meter, recorder, controller, policyenforcer, and service delivery platform device that is coupled to apredictive, self-adaptive, self-optimizing, fault-sensing, self-healing,and secure intelligent electric grid infrastructure.

FIG. 1 is a block diagram illustrating systems 100 and 200, integratingutility distribution and utility distribution automation, system 300integrating utility transmission and utility transmission automation,system 400 integrating utility generation automation, and system 500utility micro generation automation, in five embodiments according tothe present invention. In this example, system 100 includes utilitysensor 110, utility distribution device 120, and communications device130. One or both of utility sensor 110 and utility distribution device120 are coupled to utility distribution network feeder 140. Utilitydistribution device 120 is coupled to customer utility distributionnetwork 540 located at a customer's premises (indicate by a dashed lineseparating network 140 from distribution 540).

Further, in this example, system 200 includes utility sensor 210,utility distribution device 220, and communications device 230. One orboth of utility sensor 210 and utility distribution device 220 arecoupled to utility distribution network 240. Further, in this example,system 300 includes utility sensor 310, utility transmission device 320,and communications device 330. One or both of utility sensor 310 andutility transmission device 320 are coupled to utility transmissionnetwork 340. Further, in this example, system 400 includes utilitysensor 410, utility generation automation device 420, and communicationsdevice 430. One or both of utility sensor 410 and utility generationautomation device 420 are coupled to utility generation automationinterfaces 440 and utility transmission network 340. Lastly, in thisexample, system 500 includes utility micro generation automation device510, utility sensor 520, and communications device 530. One or both ofutility micro generation automation device 510 and utility sensor 520are coupled to customer utility distribution network 540 and utilitymicro generation automation interfaces 550.

In general, utility sensor 110 can include hardware and/or softwareelements configured to sense utilities provided through utilitydistribution feeder 140 to the customer's premises via utilitydistribution device 120. For example, various embodiments may sensereal-time energy loads, power quality levels, line fault conditions, andthe like.

Utility distribution device 120 can include any device associated withdistribution of a utility, such as power meters, gas meters, watermeters, switches, values, regulators, converters, transformers, and thelike. Some examples of utility distribution feeder 140 include a powergrid, including distribution lines and associated support devices, amunicipal water system, gas/propane distribution network, and the like.Some examples of customer utility distribution network 540 may includehousehold electrical wiring, smart-home distribution of cable TV,satellite, telephone, gas, water, sewer, and the like, apartment orcondo complex distribution, commercial building power/water/gasfacilities, and the like.

In some embodiments, utility sensor 110, utility distribution device120, and communications device 130 can provide real-time and nearreal-time sensing, measurement, monitoring, recording, analytics,classification, decision processing, and event and messageswitching/routing to support dynamic load shaping, improved powerquality, fault isolation and restoration, demand response, and the like.Accordingly, some embodiments of the present invention may provideintegration of disparate technologies such as utility metrology, faultisolation and grid healing, and internetworking communications, via alogic fabric, into a single device that provides interrelated functionalsupport for sensing, measurement, monitoring, recording, analysis,classification, decision processing, event and message generation,policy enforcement, and internetworking switching and/or routingservices. Further, some embodiments of the present invention are anintegrated digital device with advanced electric power sensing,measurement, monitoring, recording, analysis, decision processing,classification, event and message generation, policy enforcement,network addressing, internetworking switching and/or routing services,network addressing and security services (e.g., host configuration,firewall, intrusion detection, virtual private networking).

In one example of operation, utility sensor 110 and utility distributiondevice 120 provide one or more fault management operations. For example,some embodiments may include hardware and/or software elementsconfigured to diagnose faults, generate corrective configurations, andprovide alarm and event handling. In another example, some embodimentsinclude hardware and/or software elements configured to generate andmaintain event and history logs. In yet another example, someembodiments may include hardware and/or software elements configured toprovide policy and internetworking state management.

In another example of operation, utility sensor 110, utilitydistribution device 120, and communications device 130 may manage thecollection, recording, and reporting of communications statistics. Inanother example, an embodiment manages the collection, recording, andreporting of utility service statistics. An embodiment may furthercreate and maintain automated and on-demand reports associated with itsoperation and distribution of one or more utilities.

In some embodiments, utility sensor 110, utility distribution device120, and communications device 130 provide various security features andmanagement. For example, an embodiment may incorporate device identitydigital credentials, application level passwords, and network connectioncryptographic key management.

In various embodiments, utility sensor 110, utility distribution device120, and communications device 130 provide policy-based internetworkingcommunications to other devices coupled to customer utility distributionnetwork 540. For example, in one embodiment, the occurrence of a maximumdemand load threshold event may be communicated during a critical peakevent to one or more devices on the customer utility distributionnetwork 540, utility distribution network 240, and/or utilitytransmission network 340. In another example, load, power qualitylevels, and fault conditions may be communicated to devices on thecustomer utility distribution network 540, utility distribution network240, and/or utility transmission network 340.

In various embodiments, utility sensor 110, utility distribution device120, and communications device 130 may provide configuration managementof dynamic tariff/rate structured metering and accounting, and securepolicy-based internetworking communications. For example, one or moremetrology functions may be configured. In another example, one or moreutility network communications functions may be configured. In yetanother example, activation, provisioning, configuration, management,and accounting of voice, video, and data broadband services may beprovided and/or enabled to the customer utility distribution network540. In a further example, management and distribution services forsoftware and firmware may be provided and/or provisioned.

FIG. 2 is a block diagram illustrating an energy switch router (ESR)device 600 used in utility distribution and utility management in oneembodiment according to the present invention. ESR 600 includes: ESRlogic fabric 601, security engines 602, sensory and metrology engines603, packet/frame/event classifier engines 604, route/switch/policyprocessor engines 605, and route/switch/policy state tables 606. ESR 600may include wide area network interface components 607, metropolitanarea network interface components 608, local area network interfacecomponents 609, home area network interface components 610, monitoringand recording application components 611, control and reportingapplication components 612, identity and security application components613, and web services applications components 614. Further, ESR 600 canbe connected to utility distribution feeder 615 and customer utilitydistribution network 616.

ESR logic fabric 601 includes: security engines 602, sensory andmetrology engines 603, packet/frame/event classifier engines 604,route/switch/policy processor engines 605, and route/switch/policy statetables 606.

Sensory and metrology engines 603 can include any hardware and/orsoftware elements that perform metrology functions, such as sensing,measurement, monitoring, recording, analytics, classification, decisionprocessing, and event and message switching/routing to support dynamicload shaping, improved power quality, fault isolation and restoration,demand response, and the like. Some examples of sensory and metrologyengines 603 include American National Standards Institute (ANSI)C12.18/C12.19 energy meters, International Electrotechnical Commission(IEC) 62056 meters, distributed networking protocol (DNP) meters, smartmeters, and the like.

Wide area network (WAN) interface components 607 can include anyhardware and/or software elements configured to exchange voice, video,or data over a wide area network. Some examples of WAN interface 220include broadband interfaces, an Institute of Electrical and ElectronicsEngineers (IEEE) 802.11 interface (or WiFi interface), IEEE 802.16interface (or WiMAX interface), 3GPP LTE interface, cable modems (orDOCSIS), digital subscriber lines (xDSL), fiber-to-the-home (FTTH),leased lines (e.g., T1 or OC3), cellular phone modems, the publictelephone system (POTS), and the like. Some examples of communicationsnetworks include the Internet, a metropolitan network (MAN), a localarea network (LAN), a public network, a corporate private network, andthe like.

Home area network (HAN) interface 610 can include any hardware and/orsoftware elements configured to exchange voice, video, or data over ahome area network. Some examples of HAN interface 610 include modems,IEEE 802.1.Q interfaces (or VLANs), IEEE 802.3 interfaces (or Ethernet),Homeplug Powerline Alliance interfaces (or Homeplug), ZigBee Allianceinterfaces (or ZigBee), ASHRE interfaces (or BACnet), asynchronoustransfer mode (ATM) interfaces, fiber optic interfaces (or DWDM), andthe like. Some examples of communications networks include singlepoint-to-point links, point-to-multi-point links, customer premisesHANs, corporate LANS, and the like.

In one example of operation, ESR 600 can provide integration ofreal-time and near real-time sensing, measurement, monitoring,recording, analytics, classification, decision processing, and event andmessage switching/routing to support dynamic load shaping, improvedpower quality, fault isolation and restoration, demand response, and thelike, into a single device, via a logic fabric, that providesinterrelated functional support for energy measuring, monitoring,metering, analysis, decision processing, message generation, andinternetwork-level switching and/or routing services. In variousembodiments, these functions are extensibly provided using apolicy-based configuration, analytics, and control mechanism.

FIG. 3 is a block diagram illustrating an energy switch router (ESR)device 700 used in utility distribution and utility management in oneembodiment according to the present invention. ESR 700 includes: ESRlogic fabric 701, security engines 702, sensory and metrology engines703, packet/frame/event classifier engines 704, route/switch/policyprocessor engines 705, route/switch/policy state tables 706, wide areanetwork interface components 707, metropolitan area network interfacecomponents 708, local area network interface components 709, home areanetwork interface components 710, monitoring and recording applicationcomponents 711, control and reporting application components 712,identity and security application components 713, and web servicesapplications components 714. In various embodiments, the engines andcomponents of ESR 700 may be extensibly provided using a policy-basedconfiguration, analytics, and control mechanism.

ESR logic fabric 701 can be any hardware and/or software elementsconfigured to implement a policy. In general, a policy is a set ofdefined rules, conditions, and actions. Each rule is associated with oneor more conditions and one or more actions. Typically, the one or moreconditions must be satisfied for the one or more actions to beperformed. Some examples of conditions are number values, time values,date values, and the like. Some examples of actions are collect data,retrieve data, store data, generate messages, generate reports, operateone or more metrology functions, operate one or more load controlfunctions, and the like.

A policy may be implemented in conjunction with utility industry enddevice tables (e.g., ANSI C12.19) or utility meter objects (e.g., IEC62056). These tables and/or objects may define configuration valuesassociated with a meter, results of metrology functions, and the like.Some examples of end device tables/objects are configurationtables/objects, data source tables/objects, register tables/objects,local display tables/objects, security tables/objects, time-of-usetables/objects, load profile tables/objects, history and event logs,load control and pricing tables/objects, manufacture tables/objects, andthe like.

In various embodiments, sensory and metrology engines 703,packet/frame/event classification engines 704, monitoring and recordingapplication components 711, and control and reporting applicationcomponents 712 may detect outages, failures, disruptions, andrestoration in utility distribution. Further, an embodiment of theseengines and components may take actions in the event of a detectedoutage, failure, disruption, and restoration, such as generatingnotifications, opening/closing switches, generating reports, and thelike.

In some embodimenst, sensory and metrology engines 703,packet/frame/event classification engines 704, monitoring and recordingapplication components 711, and control and reporting applicationcomponents 712 may implement one or more utility tariff/rate programsthat are to be associated with a utility service. For example, aspecific utility tariff/rate program may be implemented to sense,measure, meter, record, and report one or more utility service tiers orlevels of service.

In further embodiments, sensory and metrology engines 703,packet/frame/event classification engines 704, route/switch/policy statetables 706, and monitoring and recording application components 711 maydefine the conditions that establish base-line physical and logicaloperation of a meter indicative of a healthy meter. Further, anembodiment of these engines and components may define actions to beperformed when conditions associated with meter fail to satisfy thedefinition of a healthy meter.

In yet another embodiment, security engines 702 and identity andsecurity application components 713 may define who has access to data,and what policies are to be enforced in the event of an intrusion orunauthorized attempt to access data.

In yet another embodiment, control and reporting application components712 and route/switch/policy processor engines 705 may define how much ofa utility may be distributed, and at what rate it is distributed.

In yet another embodiment, sensory and metrology engines 703, monitoringand recording application components 711, and control and reportingapplication components 712 may control which data is obtained to providea daily tracking of utility usage, quality, and the like. Further, anembodiment of these engines and components may define actions to beperformed that report the results of metrology functions. Further, anembodiment of these engines and components may define conditions forpre-paid energy delivery service, and may enable/disable servicedelivery according to account status.

In various embodiments, packet/frame /event classifier engines 704,route/switch/policy processor engines 705, and route/switch/policy statetables 706 define conditions for and provide priority internetworkingcommunications to ESR 700.

In some embodiments, sensory and metrology engines 703, monitoring andrecording application components 711, and control and reportingapplication components 712 may control power quality monitoring andreporting, and define limits or thresholds establishing the quality ofenergy distribution, and enforce the policies to be applied when thequality or condition of energy distribution fails to satisfy theconditions. An embodiment of these engines and components may defineconditions in which demand is slowing or increasing such thatappropriate actions are taken.

In further embodiments, security engines 702 and identity and securityapplication components 713 may enforce security policies for ESR 700. Inone example, a security policy defines one or more conditions associatedwith security of ESR 700. When the one or more conditions associatedwith the security of ESR 700 are met or satisfied, one or more actionsdefined by the security policy are performed. For example, the securitypolicy may define a set of network addresses, ports and interfaces fromwhich ESR 700 is allowed to be accessed. When ESR 700 receives a requestor packet from the set of network addresses, ports and interfaces fromwhich it is allowed to be access, the one or more actions defined by thesecurity policy may be performed to allow the request or packet from theset of network addresses, ports and interfaces.

In yet another embodiment, sensory and metrology engines 703, monitoringand recording application components 711, and control and reportingapplication components 712 may enforce metrology policies on ESR 700.When the one or more rules or conditions associated with metrologyfunctions of ESR 700 are met or satisfied, one or more actions definedby the metrology policy are performed. For example, metrology policy mayconfigure a utility device, such as an energy meter to record energyusage, store energy usage in a particular format, and send alerts andsignals when an energy usage exceeds a specific minimum or maximumthreshold.

In one or more embodiments, sensory and metrology engines 703,monitoring and recording application components 711, and control andreporting application components 712 may enforce a consumption policythat defines one or more rules or conditions associated with consumptionof utilities associated with ESR 700. When the one or more rules and/orconditions associated with the consumption policy are met or satisfied,one or more actions defined by the consumption policy are performed. Forexample, the consumption policy may define tiers for consumption, andrates associated with the predetermined tiers of consumption. Theconsumption policy may further define time intervals associated withusage of a particular utility. If a predetermined tier of consumption isexceeded, the consumption policy may define an action that throttles ordisables utilities associated with ESR 700. In another example, theconsumption policy may define an action that configures or disablesconsumer appliances (such as electric hot water heaters, airconditioners, or washer/dryers) during periods of usage, such as duringenergy emergencies.

In yet another embodiment, control and reporting application components712 may enforce a reporting policy that defines one or more rules orconditions associated with how data is to be reported from ESR 700. Whenthe one or more rules and/or conditions associated with how data isreported from ESR 700 are met or satisfied, one or more actions definedby the reporting policy are performed. For example, the reporting policymay define conditions for when and how data, such as utility consumptionand utility quality, are reported to a utility organization. When thepredefined conditions are satisfied, messages including the data may begenerated and queued/sent to the utility organization for collection.

In one embodiment, web services application components 714 can be usedto deploy policies that are provisioned using the Common Open PolicyService (COPS) protocol. In general, COPS is part of the Internetprotocol suite as defined by the IETF's RFC 2748. COPS specifies asimple client/server model for supporting policy provisioning andenforcement. COPS policies are typically stored on policy servers, knownas Policy Decision Points (PDP), and are enforced on distributedclients, also known as Policy Enforcement Points (PEP).

In general, there are two “flavors,” or models of COPS: The OutsourcingModel and the Provisioning Model. The Outsourcing Model is the simplestflavor of COPS. In this model, all policies are stored at the PDP.Whenever the PEP needs to make a decision, it sends all relevantinformation to the PDP. The PDP analyzes the information, takes thedecision, and relays it to the PEP. The PEP then simply enforces thedecision. In the Provisioning Model, the PEP reports its decision-makingcapabilities to the PDP. The PDP then downloads relevant policies on tothe PEP. The PEP can then make its own decisions based on thesepolicies. The Provisioning Model can use the route/switch/policyprocessor engines 705 to enforce the policies, and theroute/switch/policy state tables 706 as an in-memory repository of thepolicies.

In further examples of operation, ESR 700 provides integration andinterrelation of utility sensory and measurement functions, servicemonitoring and recording functions, service control and policyenforcement functions, web-based configuration and service deliveryinterfaces, and secure communications into a single device.

FIG. 4 is a block diagram illustrating security engines 702, sensory andmetrology engines 703, packet/frame/event classifier engines 704,route/switch/policy processor engine 705, and route/switch/policy statetables 706, which are integrated and interrelated via ESR logic fabric701, that may be employed by ESR 700 of FIG. 2 in one embodimentaccording to the present invention. In this example, security engines702 includes authentication, authorization, and accounting (AAA)functions, firewall (FW), intrusion detection (IDS), network addresstranslation (NAT), and virtual private network (VPN) services.

Security engines 702 can include firewall services (FW). FW can includehardware and/or software elements configured to regulate the flow oftraffic between computer networks of different trust levels associatedwith ESR 700. Some examples of computer networks are the Internet, whichmay be a zone with no trust, and intelligent electric grid network 815of FIG. 8A, which may be a zone of higher trust. FW may further providea zone with an intermediate trust level, such as a “perimeter network”or Demilitarized zone (DMZ). In addition, FW may prevent networkintrusion from a private network, such as customer utility distributionnetwork 616 of FIG. 2.

Security engines 702 can include intrusions detection services (IDS).IDS can includes hardware and/or software elements configured to detectunwanted manipulations of ESR 700. In general, IDS may be used to detectseveral types of malicious behaviors that can compromise the securityand trust of ESR 700. This may include network attacks againstvulnerable services, data driven attacks on applications, host basedattacks such as privilege escalation, unauthorized logins and access tosensitive files, and malware (viruses, trojan horses, and worms). Invarious embodiments, IDS can be composed of several components (notshown), such as sensors which generate security events, a console tomonitor events and alerts and control the sensors, and a engine thatrecords events logged by the sensors in a database and uses a system ofpolicies to generate alerts from security events received.

Security engines 702 can include network address translation services(NAT). NAT can include hardware and/or software elements configured totranslate portions of network traffic. In general, NAT, also known asNetwork Masquerading, Native Address Translation or IP Masquerading is atechnique of re-writing the source and/or destination Internet Protocol(IP) addresses and usually also the Transmission Control Protocol/UserDatagram Protocol (TCP/UDP) port numbers of IP packets as they passthrough. In various embodiments, NAT enables multiple hosts on a privatenetwork to access the Internet using a single public IP address.

Security engines 702 can include virtual private network services (VPN).VPN can include hardware and/or software elements configured to provideinternetworking communications securely tunneled between two or moredevices. For example, VPN may secure communications and the transmissionof data associated with ESR 700 through intelligent electric gridnetwork 815 of FIG. 8A. VPN may include security features, such asauthentication or content encryption.

In further examples of operation, ESR 700 may provide integration andinterrelation of utility sensory and measurement functions, servicemonitoring and recording functions, service control and policyenforcement functions, web-based configuration and service deliveryinterfaces, and secure communications into a single device.

FIG. 5 is a block diagram illustrating integrated and interrelated widearea network 707, metropolitan area network 708, local area network 709,and home area network 710 interface components that may be employed byESR 700 of FIG. 2 in one embodiment according to the present invention.

In various embodiments, wide area network interface component 707 caninclude hardware and/or software elements configured to provide securewide area internetworking communications that may be employed by ESR700. In some embodiments, metropolitan area network interface component708 can include hardware and/or software elements configured to providesecure metropolitan area internetworking communications that may beemployed by ESR 700.

In further embodiments, local area network interface component 709 caninclude hardware and/or software elements configured to provide securelocal area internetworking communications that may be employed by ESR700. In still further embodiments, home area network interface component710 can include hardware and/or software elements configured to providesecure home area internetworking communications that may be employed byESR 700.

FIG. 6 is a block diagram illustrating integrated and interrelatedmonitoring and recording application components 711, control andreporting application components 712, identity and security applicationcomponents 713, and web services applications and components 714 thatmay be employed by ESR 700 of FIG. 2 in one embodiment according to thepresent invention.

In some embodiments, monitoring and recording application components 711can include hardware and/or software elements configured to provideutility monitoring and recording services that may be employed by ESR700. Control and reporting application components 712 can includehardware and/or software elements configured to provide utility controland reporting services that may be employed by ESR 700.

In various embodiments, identity and security application components 713can include hardware and/or software elements configured to provideutility control and reporting services that may be employed by ESR 700.Web services application components 714 can include hardware and/orsoftware elements configured to provide web services interfaces that maybe employed by ESR 700.

FIG. 7 is a block diagram depicting ESR 700A, ESR 700B, ESR 700C, ESR700D, and ESR 700E which can used to provide policy-based advancedutility generation automation and secure internetworking functions thatenable an intelligent electric grid network that is predictive,self-adaptive, self-optimizing, fault-sensing, self-healing, and securein one embodiment according to the present invention.

FIGS. 8A, 8B and 8C are block diagrams of ESR 800 that provides utilitysensory and measurement functions, service monitoring, metering, andrecording functions, service control and policy enforcement functions,web-based configuration and utility service delivery interfaces, andsecure internetworking communications into a single device in oneembodiment according to the present invention. At the heart of the ESR800 is ESR logic fabric 801, which can include security engines 802,sensory and metrology engines 803, packet/frame/event classifier engines804, route/switch/policy processor engines 805, and route/switch/policystate tables 806.

ERS 800 may also include WiMAX MAN/WAN components 807, Homeplug LANcomponents 808, Homeplug HAN components 809, and WiFi HAN components810, monitoring and recording application components 811, control andreporting application components 812, identity and security applicationcomponents 813, and web services application components 814, all ofwhich can be integrated and interrelated with ESR logic fabric 801.

In this embodiment, ESR 800 receives electrical distribution fromutility distribution feeder for sensory and measurement functions,service monitoring, metering, and recording functions, service controland policy enforcement functions, and distributes electricity toelectric circuit breaker box located at a customer's premises. ESR 800can be connected to intelligent electric grid network 815 (e.g., theAdvanced Metering Infrastructure (AMI) network) and/or to the Internetthrough WiMAX MAN/WAN component 807 and/or through Homeplug LANcomponent 808.

In one example of operation, ESR 800 may configure, sense, measure,monitor, meter, record, and control electric power being distributed tothe customer premises. ESR 800 may then route information associatedwith the above functions to/from intelligent electric grid network 815.

In another example of operation, ESR 800 may deliver voice, video and/ordata broadband services between computer systems or devices located onthe customer's premises and the Internet using WiMAX MAN/WAN component807 and/or Homeplug HAN component 809.

In various embodiments, ESR 800 can be connected via WiFi component 810,or via a Homeplug to WiFi bridge, to one or more WiFi devices on thecustomer's premises (e.g., a WiFi programmable communicating thermostat[PCT], a WiFi Gas meter, a WiFi water meter, a WiFi laptop/desktop).

ESR 800 may be connected via a Homeplug to ethernet bridge, to one ormore ethernet devices (e.g., a desktop computer with an ethernet networkinterface card [NIC]). In addition, ESR 800 may further be connected viaa Homeplug to ZigBee bridge to one or more ZigBee devices (e.g., aZigBee PCT, a ZigBee gas meter, a ZigBee water meter). ESR 800 may actas an interface between these other utility devices, such as the gasmeter or the water meter, and utility organizations responsible for theutility devices. ESR 800 may allow the devices coupled to the Homeplugnetwork located at the customer's premises to access informationassociated with ESR 800 (e.g., such as utility usage) and to connect tothe Internet.

Referring to FIGS. 8B and 8C, in some embodiments, ESR 800 may providean intelligent routing/switching path between different communicationnetworks associated with ESR 800. In these examples, ESR 800 canroute/switche data between layers associated with WiMAX MAN components807, Homeplug LAN components 808, Homeplug MAN components 809, and WiMAXWAN components 807.

FIGS. 9A, 9B, and 9C are block diagrams of ESR 900 that provides utilitysensory and measurement functions, service monitoring, metering, andrecording functions, service control and policy enforcement functions,web-based configuration and utility service delivery interfaces, andsecure internetworking communications into a single device in oneembodiment according to the present invention. At the heart of the ESR900 is the ESR logic fabric 901, which is comprised of security engines902, sensory and metrology engines 903, packet/frame/event classifierengines 904, route/switch/policy processor engines 905, androute/switch/policy state tables 906.

ERS 900 may also include WiMAX MAN/WAN components 907, Homeplug LANcomponents 908, Homeplug HAN components 909, and ZigBee HAN components910, monitoring and recording application components 911, control andreporting application components 912, identity and security applicationcomponents 913, and web services application components 914, all ofwhich may be integrated and interrelated with ESR logic fabric 901.

In one embodiment, ESR 900 can receive electrical distribution fromutility distribution feeder for sensory and measurement functions,service monitoring, metering, and recording functions, service controland policy enforcement functions, and distributes electricity toelectric circuit breaker box located at a customer's premises. ESR 900may be connected to intelligent electric grid network 915 (e.g., theAdvanced Metering Infrastructure (AMI) network) and/or to the Internetthrough WiMAX MAN/WAN component 907 and/or through Homeplug LANcomponent 908.

In one example of operation, ESR 900 may configure, sense, measure,monitor, meter, record, and control electric power being distributed tothe customer premises. ESR 900 may then route information associatedwith the above functions to/from intelligent electric grid network 915.

In one example of operation, ESR 900 may deliver voice, video and/ordata broadband services between computer systems or devices located onthe customer's premises and the Internet using WiMAX MAN/WAN component907 and/or Homeplug HAN component 909.

ESR 900 may further be connected via a Homeplug to WiFi bridge, to oneor more WiFi devices on the customer's premises (e.g., a WiFiprogrammable communicating thermostat [PCT], a WiFi Gas meter, a WiFiwater meter, a WiFi laptop/desktop), or the like.

ESR 900 may be connected via the ZigBee component 910, or via a Homeplugto ZigBee bridge, to one or more ZigBee devices on the customer'spremises (e.g., a ZigBee programmable communicating thermostat [PCT], aZigBee Gas meter, a ZigBee water meter), or the like.

ESR 900 may be connected via a Homeplug to ethernet bridge, to one ormore Ethernet devices (e.g., a desktop computer with an ethernet networkinterface card [NIC]). In some embodiments, ESR 900 can be connected viaa Homeplug to ZigBee bridge to one or more ZigBee devices (e.g., aZigBee PCT, a ZigBee gas meter, a ZigBee water meter). ESR 900 may actas an interface between these other utility devices, such as the gasmeter or the water meter, and utility organizations responsible for theutility devices. ESR 900 may allow the devices coupled to the Homeplugnetwork located at the customer's premises to access informationassociated with ESR 900 (e.g., such as utility usage) and to connect tothe Internet.

Referring to FIGS. 9B and 9C, in various embodiments, ESR 900 canprovide an intelligent routing/switching path between differentcommunication networks associated with ESR 900. In these examples, ESR900 may route/switch data between layers associated with WiMAX MANcomponents 907, Homeplug LAN components 908, Homeplug MAN components909, ZigBee HAN components 910, and the WiMAX WAN components 907.

FIGS. 10A and 10B are block diagrams of ESR 1000 that provides utilitysensory and measurement functions, service monitoring, metering, andrecording functions, service control and policy enforcement functions,web-based configuration and utility service delivery interfaces, andsecure internetworking communications into a single device in oneembodiment according to the present invention. At the heart of ESR 1000is ESR logic fabric 1001, which is comprised of security engines 1002,sensory and metrology engines 1003, packet/frame/event classifierengines 1004, route/switch/policy processor engines 1005, androute/switch/policy state tables 1006.

ERS 1000 can includes Data Over Cable Service Interface Specifications(DOCSIS) MAN components 1007, Homeplug LAN components 1008, Homeplug HANcomponents 1009, and WiFi HAN components 1010, monitoring and recordingapplication components 1011, control and reporting applicationcomponents 1012, identity and security application components 1013, andweb services application components 1014, all of which are integratedand interrelated with the ESR logic fabric 1001 in one embodimentaccording to the present invention.

In various embodiments, ESR 1000 receives electrical distribution fromutility distribution feeder for sensory and measurement functions,service monitoring, metering, and recording functions, service controland policy enforcement functions, and distributes electricity toelectric circuit breaker box located at a customer's premises. ESR 1000may be connected to intelligent electric grid network 1015 (e.g., theAdvanced Metering Infrastructure (AMI) network) and/or to the Internetthrough the DOCSIS MAN components 1007 and/or through Homeplug LANcomponents 1008.

In one example of operation, ESR 1000 may configure, sense, measure,monitor, meter, record, and control electric power being distributed tothe customer premises. ESR 1000 may then route information associatedwith the above functions to/from intelligent electric grid network 1015.

In another example of operation, ESR 1000 may deliver voice, videoand/or data broadband services between computer systems or deviceslocated on the customer's premises and the Internet using DOCSIS MANcomponent 1007 and Homeplug HAN component 1009.

ESR 1000 may be connected via WiFi component 1010, or via a Homeplug toWiFi bridge, to one or more WiFi devices on the customer's premises(e.g., a WiFi programmable communicating thermostat [PCT], a WiFi Gasmeter, a WiFi water meter, a WiFi laptop/desktop), or the like.

ESR 1000 may be further connected via a Homeplug to ethernet bridge, toone or more Ethernet devices (e.g., a desktop computer with an ethernetnetwork interface card [NIC]). In some embodiments, ESR 1000 can befurther connected via a Homeplug to ZigBee bridge to one or more ZigBeedevices (e.g., a ZigBee PCT, a ZigBee gas meter, a ZigBee water meter).ESR 1000 may act as an interface between these other utility devices,such as the gas meter or the water meter, and utility organizationsresponsible for the utility devices. ESR 1000 may allow the devicescoupled to the Homeplug network located at the customer's premises toaccess information associated with ESR 1000 (e.g., such as utilityusage) and to connect to the Internet.

Referring to FIG. 100B, ESR 1000 can provide an intelligentrouting/switching path between different communication networksassociated with ESR 1000. In these examples, ESR 1000 may route/switchdata between layers associated with DOCSIS components 1007, Homeplug LANcomponents 1008, Homeplug MAN components 1009, and WiFi HAN components1010.

FIGS. 11A and 11B are block diagrams of ESR 1100 that provides utilitysensory and measurement functions, service monitoring, metering, andrecording functions, service control and policy enforcement functions,web-based configuration and utility service delivery interfaces, andsecure internetworking communications into a single device in oneembodiment according to the present invention. At the heart of the ESR1100 is ESR logic fabric 1101, which can be comprised of securityengines 1102, sensory and metrology engines 1103, packet/frame/eventclassifier engines 1104, route/switch/policy processor engines 1105, androute/switch/policy state tables 1106.

The one embodiment, ERS 1100 can also includes Digital Subscriber Line(xDSL) MAN components 1107, Homeplug LAN components 1108, Homeplug HANcomponents 1109, and WiFi HAN components 1110, monitoring and recordingapplication components 1111, control and reporting applicationcomponents 1112, identity and security application components 1113, andweb services application components 1114, all of which can be integratedand interrelated with the ESR logic fabric 1101.

In some embodiments, ESR 1100 may receive electrical distribution fromutility distribution feeder for sensory and measurement functions,service monitoring, metering, and recording functions, service controland policy enforcement functions, and distributes electricity toelectric circuit breaker box located at a customer's premises. ESR 1100may be connected to intelligent electric grid network 1115 (e.g., theAdvanced Metering Infrastructure (AMI) network) and/or to the Internetthrough the xDSL MAN component 1107 and/or through the Homeplug LANcomponents 1108.

In one example of operation, ESR 1100 may configure, sense, measure,monitor, meter, record, and control electric power being distributed tothe customer premises. ESR 1100 may then route information associatedwith the above functions to/from intelligent electric grid network 1115.

In another example of operation, ESR 1100 may deliver voice, videoand/or data broadband services between computer systems or deviceslocated on the customer's premises and the Internet using xDSL MANcomponent 1107 and the Homeplug HAN component 1109.

ESR 1100 may be connected via the WiFi component 1110, or via a Homeplugto WiFi bridge, to one or more WiFi devices on the customer's premises(e.g., a WiFi programmable communicating thermostat [PCT], a WiFi Gasmeter, a WiFi water meter, a WiFi laptop/desktop), or the like.

ESR 1100 may be further connected via a Homeplug to ethernet bridge, toone or more Ethernet devices (e.g., a desktop computer with an ethernetnetwork interface card [NIC]). In some embodiments, ESR 1100 can beconnected via a Homeplug to ZigBee bridge to one or more ZigBee devices(e.g., a ZigBee PCT, a ZigBee gas meter, a ZigBee water meter). ESR 1100may act as an interface between these other utility devices, such as thegas meter or the water meter, and utility organizations responsible forthe utility devices. ESR 1100 may allow the devices coupled to theHomeplug network located at the customer's premises to accessinformation associated with ESR 1100 (e.g., such as utility usage) andto connect to the Internet.

Referring to FIG. 11B, ESR 1100 can provide an intelligentrouting/switching path between different communication networksassociated with ESR 1100. In these examples, ESR 1100 may route/switchdata between layers associated with xDSL components 1107, Homeplug LANcomponents 1108, Homeplug MAN components 1109, and WiFi HAN components1110.

FIGS. 12A, 12B and 12C are block diagrams of ESR 1200 that providesutility sensory and measurement functions, service monitoring, metering,and recording functions, service control and policy enforcementfunctions, web-based configuration and utility service deliveryinterfaces, and secure internetworking communications into a singledevice in one embodiment according to the present invention. At theheart of the ESR 1200 is ESR logic fabric 1201, which can be comprisedof security engines 1202, sensory and metrology engines 1203,packet/frame/event classifier engines 1204, route/switch/policyprocessor engines 1205, and route/switch/policy state tables 1206.

In various embodiments, ERS 1200 can includes 3GPP LTE MAN/WANcomponents 1207, Homeplug LAN components 1208, Homeplug HAN components1209, and WiFi HAN components 1210, monitoring and recording applicationcomponents 1211, control and reporting application components 1212,identity and security application components 1213, and web servicesapplication components 1214, all of which can be integrated andinterrelated with ESR logic fabric 1201.

In some embodiments, ESR 1200 may receive electrical distribution fromutility distribution feeder for sensory and measurement functions,service monitoring, metering, and recording functions, service controland policy enforcement functions, and distributes electricity toelectric circuit breaker box located at a customer's premises. ESR 1200may be connected to intelligent electric grid network 1215 (e.g., theAdvanced Metering Infrastructure (AMI) network) and/or to the Internetthrough the 3GPP LTE MAN/WAN component 1207 and/or through the HomeplugLAN component 1208.

In one example of operation, ESR 1200 may configure, sense, measure,monitor, meter, record, and control electric power being distributed tothe customer premises. ESR 1200 may then route information associatedwith the above functions to/from intelligent electric grid network 1215.

In another example of operation, ESR 1200 may deliver voice, videoand/or data broadband services between computer systems or deviceslocated on the customer's premises and the Internet using the 3GPP LTEMAN/WAN component 1207 and Homeplug HAN component 1209.

ESR 1200 may further be connected via WiFi component 1210, or via aHomeplug to WiFi bridge, to one or more WiFi devices on the customer'spremises (e.g., a WiFi programmable communicating thermostat [PCT], aWiFi Gas meter, a WiFi water meter, a WiFi laptop/desktop), or the like.

ESR 1200 may be further connected via a Homeplug to ethernet bridge, toone or more Ethernet devices (e.g., a desktop computer with an ethernetnetwork interface card [NIC]). In some embodiments, ESR 1200 may befurther connected via a Homeplug to ZigBee bridge to one or more ZigBeedevices (e.g., a ZigBee PCT, a ZigBee gas meter, a ZigBee water meter).ESR 1200 may act as an interface between these other utility devices,such as the gas meter or the water meter, and utility organizationsresponsible for the utility devices. ESR 1200 may allow the devicescoupled to the Homeplug network located at the customer's premises toaccess information associated with ESR 1200 (e.g., such as utilityusage) and to connect to the Internet.

Referring to FIGS. 12B and 12C, ESR 1200 may provide an intelligentrouting/switching path between different communication networksassociated with ESR 1200. In these examples, ESR 1200 can route/switchdata between layers associated with the 3GPP LTE MAN components 1207,Homeplug LAN components 1208, Homeplug MAN components 1209, and 3GPP LTEWAN components 1207.

FIG. 13 is a flowchart of a method for policy-based configuration ofenergy switch routing functions in one embodiment according to thepresent invention. The processing depicted in FIG. 13 may be performedby software modules (e.g., instructions or code) executed by a processorof an energy switch router or ESR (e.g., ESR 700 of FIG. 3), by hardwaremodules, or combinations thereof. FIG. 13 begins in step 1301.

In 1302, a utility organization generates a configuration policy. Someexamples of utility organizations are an electric company, a naturalgas/propane distributor, a municipal water district, a sewer company,and the like. The utility organization may use a variety of softwareapplications to generate the configuration policy. In one embodiment,the utility company generates the configuration policy using a COPS-PRbased policy engine.

In step 1303, the utility organization deploys the configuration policyto one or more ESRs (e.g., ESR 700). The utility organization may deploythe configuration policy from a centralized location to a plurality ofdistributed ESRs using the organization's private network (e.g.,Intelligent Electric Grid Network). The utility organization may alsodeploy the configuration policy from a centralized location to theplurality of distributed ESRs using a public networks, such as theInternet. The utility organization may also deploy the configurationpolicy when the ESR is installed at a customer's premises or at alocation associated with the organization's utility network ordistribution infrastructure.

In step 1304, ESR 700's operating configuration is updated according tothe configuration policy. For example, the configuration policy maydefine the conditions under which ESR 700 operates, the type and formatof data is recorded and stored by metrology functions associated withESR 700, mechanisms for reporting and/or forwarding the data, and thelike.

In step 1305, ESR 700 performs one or more sensory, and/or metrologyfunctions as defined by the configuration policy.

In step 1306, ESR 700 performs one or more classification,prioritization, and/or security functions as defined by theconfiguration policy.

In step 1307, ESR 700 performs one or more recording and controlfunctions as defined by the configuration policy.

In step 1308, ESR 700 performs one or more routing, switching, and/orpolicy enforcement functions as defined by the configuration policy.

FIG. 14 is a flowchart of a method for removal of policy-basedconfiguration of energy switch routing functions in one embodimentaccording to the present invention. The processing depicted in FIG. 14may be performed by software modules (e.g., instructions or code)executed by a processor of an energy switch router or ESR (e.g., ESR 700of FIG. 3), by hardware modules, or combinations thereof. FIG. 14 beginsin step 1401.

In step 1402, a utility organization undeploys a configuration policypreviously deployed to ESR 700. The utility organization may undeploythe configuration policy from a centralized location to a plurality ofdistributed ESRs using the organization's private network (e.g.,Intelligent Electric Grid Network). The utility organization may alsoundeploy the configuration policy from a centralized location to theplurality of distributed ESRs using a public networks, such as theInternet. The utility organization may also deploy the configurationpolicy when the ESR is installed at a customer's premises or at alocation associated with the organization's utility network ordistribution infrastructure.

In step 1403, ESR 700's operating configuration is updated according tothe undeploy request.

In step 1404, ESR 700 performs one or more sensory, and/or metrologyfunctions as defined by the undeploy request.

In step 1405, ESR 700 performs one or more classification,prioritization, and/or security functions as defined by the undeployrequest.

In step 1406, ESR 700 performs one or more recording and controlfunctions as defined by the undeploy request.

In step 1407, ESR 700 performs one or more routing, switching, and/orpolicy enforcement functions as defined by the undeploy request.

FIG. 15 is a flowchart of a method for power quality and control policydeployment and enforcement in one embodiment according to the presentinvention. FIG. 15 begins in step 1501. In step 1502, a utilityorganization generates a Power Q&C policy. In one example, the Power Q&Cpolicy defines a set of limits or thresholds that when satisfieddetermine the quality or grade of energy distribution. The Power Q&Cpolicy may further define one or more actions to be performed when thequality or grade of energy distribution satisfies or fails to satisfythe set of limits or thresholds.

In step 1503, the utility organization deploys the Power Q&C policy toan energy switch router or ESR (e.g., ESR 700 of FIG. 3). In step 1504,ESR 700's operating configuration is updated according to the Power Q&C.For example, ESR 100 may configure one or more alarms or notificationevents associated with the utility meter based on the set of thresholdsdefining the quality or grade of energy distribution.

In step 1505, ESR 700 performs one or more sensory, and/or metrologyfunctions as defined by the Power Q&C policy.

In step 1506, ESR 700 performs one or more classification,prioritization, and/or security functions as defined by the Power Q&Cpolicy.

In step 1507, ESR 700 performs one or more recording and controlfunctions as defined by the Power Q&C policy.

In step 1508, ESR 700 performs one or more routing, switching, and/orpolicy enforcement functions as defined by the Power Q&C policy.

In step 1509, ESR 700 identifies, classifies, and prioritizes a PowerQ&C event per the deployed policy logic.

In step 1510, ESR 700 meters a Power Q&C event per the deployed policylogic.

In step 1511, ESR 700 records and controls the Power Q&C event per thedeployed policy logic.

In step 1512, ESR 700 performs one or more Power Q&C event reporting andmessaging per the deployed policy logic.

FIG. 16 is a block diagram of a self-healing intelligent electric gridnetwork 1600 in one embodiment according to the present invention. Invarious examples, utilities (e.g., electricity, water, and gas) can bedistributed from a utility main office or other generation locations,transmission locations, transmission feeder locations, distributionlocations, distribution feeder location, or the like, to one or moresubstations, industrial, commercial, and/or residential end pointsand/or customer premises.

In various embodiments, a utility network operation center (NOC) withone or more policy servers provides intelligence for communication,management, and healing of all or part of devices associated with autility network. For example, one or more utility NOCs may communicatewith ESRs and utility devices at generation stations, transmissionssubstations, transmission feeder substations, distribution substations,distribution feeder substations, and the customer premises.

Each ESR may be configured to control the utility devices. Some examplesof utility devices are meters, switches, transformers, generators,converters, valves, pumps, and the like. In one example, a distributionsubstation can be configured to distribute one or more utilities todistribution feeders or consumer premises primarily using a firstdistribution line or network. The distribution station may be configuredto distribute the one or more utilities to other distribution feederssecondarily using a second distribution line or network.

The utility NOC and/or each of the ESRs may periodically communicate.For example, the utility NOC may request or poll utility usage andconsumption information from one or more ESRs located at customerpremises. The utility NOC may also send new policies, forward policyupdates, and send instructions to remove old polices from any ESRs. Inanother example, one or more ESRs may be configured to send dataupstream to an ESR or the utility NOC.

In one example of operation, a failure in the distribution of a utilityto one or more ESRs distributed throughout the utility grid be detectedby the one or more ESRs. Affected ESRs may generate and transmit amessage indicative of the failure to the utility NOC. An affected ESRmay further transmit a message or raise an event with another ESR forforwarding (e.g., routing/switching) if the utility NOC cannot bedirectly contacted. Accordingly, a problem resulting in the failure maythen be quickly isolated and fix. As a result, work crews may beautomatically notified and dispatched to a particular location, such asthe customer premises.

In yet another example of operation, each ESR within the utility networkmay remedy a failure in the distribution of the utility by requestingactions be performed by one or more other ESRs. An ESR in one substationmay instruct another ESR in another substation to operate one or moreutility devices to reroute utility distribution. Thus, ESRs mayintelligently communicate based on policy configurations toautomatically heal and repair the utility network.

FIG. 17 is a screenshot of web service interface 1700 that may beassociated with an ESR in one embodiment according to the presentinvention. Secure utility interface 1700 includes one or more navigationbuttons 1710 configured to access various features or functionality ofinterface 1700.

Menu 1720 can be displayed to a user and include navigation options,such as “My Account,” “Billing,” “Service Request,” “Energy EfficiencyRebates,” “Tips/Tools to Save Energy,” “My Profile,” and the like.Interface 1700 may further include an area 1730 labeled “My Account”which displays summary of account information (e.g., account number,customer name, service address, payment information, and the like) inarea 1740. In an area 1750 labeled “My Usage,” interface 1700 maydisplay information associated with utility usage. For example,interface 1700 can include a bar graph 1760 that displays historicaldata related to utility usage.

In some embodiments, web service interface 1700 can include a navigationbutton 1770 that enables a user to obtain information associated withcurrent power outages. In an area 1780 labeled “My Services,” interface1700 can display icons or indicators associated with actions a user canperform in conjunction with the user's service (e.g., read a meter,change rate program, set demand thresholds, establish energy managementsettings, and the like).

Interface 1700 may further include navigation button 1790 which allows auser to subscribe to a broadband connection to the Internet through thesmart meter. For example, a user may be coupled wireless to an ESR via alocal area network when the ESR acts as a wireless access point. Theuser may obtain Internet access using the ESR via a WiMAX modem, xDSLmodem, DOCSIS cable mode, or BPL modem associated with the ESR thatalready may be used by a utility organization to orchestrate anintelligent electric grid network.

FIG. 18 is an embodiment of ESR 1800 for utility distribution in oneembodiment according to the present invention. ESR 1800 can include ESRlogic fabric 1801, security engines 1802, sensory and metrology engines1803, packet/frame/event classifier engines 1804, route/switch/policyprocessor engines 1805, and route/switch/policy state tables 1806. ESR1800 may include wide area network interface components 1807,metropolitan area network interface components 1808, local area networkinterface components 1809, monitoring and recording applicationcomponents 1810, control and reporting application components 1811,identity and security application components 1812, and web servicesapplications components 1813.

In various embodiments, ESR 1800 may communicate with and be provisionedusing a policy-based configuration, analytics, and control mechanism viautility distribution network 1814.

FIG. 19 is an embodiment of ESR 1900 for utility transmission in oneembodiment according to the present invention. ESR 1900 can include ESRlogic fabric 1901, security engines 1902, sensory and metrology engines1903, packet/frame/event classifier engines 1904, route/switch/policyprocessor engines 1905, and route/switch/policy state tables 1906. ESR1900 may include wide area network interface components 1907,metropolitan area network interface components 1908, local area networkinterface components 1909, monitoring and recording applicationcomponents 1910, control and reporting application components 1911,identity and security application components 1912, and web servicesapplications components 1913.

In various embodiments, ESR 1900 may communicate with and be provisionedusing a policy-based configuration, analytics, and control mechanism viautility transmission network 1914.

FIG. 20 is an embodiment of ESR 2000 for utility generation automation,located at a utility's generation plant, in one embodiment according tothe present invention. ESR 2000 can include ESR logic fabric 2001,security engines 2002, sensory and metrology engines 2003,packet/frame/event classifier engines 2004, route/switch/policyprocessor engines 2005, and route/switch/policy state tables 2006. ESR2000 may include utility generation automation components 2007, widearea network interface components 2008, metropolitan area networkinterface components 2009, local area network interface components 2010,monitoring and recording application components 2011, control andreporting application components 2012, identity and security applicationcomponents 2013, and web services applications components 2014.

In various embodiments, ESR 2000 may communicate with and be provisionedusing a policy-based configuration, analytics, and control mechanism viautility distribution network 1914 and/or utility generation automationinterfaces 2015.

FIG. 21 is an embodiment of ESR 2100 for utility micro generationautomation, located at the customer's premises, in one embodimentaccording to the present invention. ESR 2100 can include ESR logicfabric 2101, security engines 2102, sensory and metrology engines 2103,packet/frame/event classifier engines 2104, route/switch/policyprocessor engines 2105, and route/switch/policy state tables 2106. ESR2100 may include micro utility generation automation components 2107,metropolitan/wide area network interface components 2108, local areanetwork interface components 2109, home area network interfacecomponents 2110, monitoring and recording application components 2111,control and reporting application components 2112, identity and securityapplication components 2113, and web services applications components2114.

In various embodiments, ESR 2100 may communicate with and be provisionedusing a policy-based configuration, analytics, and control mechanism viacustomer utility distribution network 2115 and/or utility microgeneration automation network 2116.

FIG. 22 is a block diagram of computer system 2200 that may incorporateembodiments of the present invention. FIG. 22 is merely illustrative ofan embodiment incorporating the present invention and does not limit thescope of the invention as recited in the claims. One of ordinary skillin the art would recognize other variations, modifications, andalternatives.

As shown in FIG. 22, computer system 2200 may include a processor(s)2210 that communicates with a number of peripheral devices via a bussubsystem 2260. These peripheral devices may include memory (e.g., RAMor ROM) 2220, storage 2230, input/output (I/O) devices 2240, andcommunications interface 2250.

In some embodiment, computer system 2200 includes one or moremicroprocessors from Intel or Advanced Micro Devices (AMD) asprocessor(s) 2210. Further, one embodiment, computer system 2200includes a LINUX or UNIX-based operating system.

Memory 2220 and storage 2230 are examples of tangible media configuredto store data such as embodiments of the present invention, includingexecutable computer code, human readable code, or the like. Other typesof tangible media include floppy disks, removable hard disks, opticalstorage media such as CD-ROMS, DVDs and bar codes, semiconductormemories such as flash memories, read-only-memories (ROMS),battery-backed volatile memories, networked storage devices, and thelike. Memory 2220 and storage 2230 may be configured to store the basicprogramming and data constructs that provide the functionality of thepresent invention.

Software code modules and instructions that provide the functionality ofthe present invention may be stored in Memory 2220 and storage 2230.These software modules may be executed by processor(s) 2210. Memory 2220and storage 2230 may also provide a repository for storing data used inaccordance with the present invention.

I/O interface 2240 may interface with all possible types of devices andmechanisms for inputting information to computer system 2200 andoutputting information from computer system 2200. These may include akeyboard, a keypad, a touch screen incorporated into the display, audioinput devices such as voice recognition systems, microphones, and othertypes of input devices. In various embodiments, user input devices aretypically embodied as a computer mouse, a trackball, a track pad, ajoystick, wireless remote, drawing tablet, voice command system, eyetracking system, and the like. These user input devices typically allowa user to select objects, icons, text, and the like, that appear on amonitor or display device via a command such as a click of a button orthe like. User output devices may include all possible types of devicesand mechanisms for outputting information from computer system 2200.These may include a display, a monitor, non-visual displays such asaudio output devices, etc.

Communications interface 2250 provides an interface to othercommunication networks and devices. Communications interface 2250 mayserve as an interface for receiving data from and transmitting data toother systems. Embodiments of communications interface 2250 typicallyinclude an Ethernet card, a modem (telephone, satellite, cable, ISDN),(asynchronous) digital subscriber line (DSL) unit, FireWire interface,USB interface, and the like. For example, communications interface 2250may be coupled to a computer network, to a FireWire bus, or the like. Inother embodiments, communications interfaces 2250 may be physicallyintegrated on the motherboard of computer system 2200, and may be asoftware program, such as soft DSL, or the like.

In various embodiments, computer system 2200 may also include softwarethat enables communications over a network such as the HTTP, TCP/IP,RTP/RTSP protocols, and the like. In alternative embodiments of thepresent invention, other communications software and transfer protocolsmay also be used, for example IPX, UDP or the like.

Bus subsystem 2260 provides a mechanism for letting the variouscomponents and subsystems of computer system 2200 communicate with eachother as intended. Although bus subsystem 2260 is shown schematically asa single bus, alternative embodiments of the bus subsystem may utilizemultiple busses.

FIG. 22 is representative of a computer system capable of embodying thepresent invention. It will be readily apparent to one of ordinary skillin the art that many other hardware and software configurations aresuitable for use with the present invention. For example, the computermay be an embedded device, a desktop, a portable, a rack-mounted, or atablet configuration. Additionally, the computer may be a series ofnetworked computers. Further, the use of other micro processors arecontemplated, such as Pentium™ or Itanium™ microprocessors; Opteron™ orAthlonXP™ microprocessors from Advanced Micro Devices, Inc; and thelike. Further, other types of operating systems are contemplated, suchas Windows®, WindowsXP®, WindowsNT®, or the like from MicrosoftCorporation, Solaris from Sun Microsystems, LINUX, UNIX, and the like.In still other embodiments, the techniques described above may beimplemented upon a chip or an auxiliary processing board.

The specification and drawings are, accordingly, to be regarded in anillustrative rather than a restrictive sense. It will, however, beevident that various modifications and changes may be made thereuntowithout departing from the broader spirit and scope of the invention asset forth in the claims. The scope of the invention should, therefore,be determined not with reference to the above description, but insteadshould be determined with reference to the pending claims along withtheir full scope or equivalents.

1. An apparatus for policy-based networking of an electric gridarchitecture, the apparatus comprising: a wide area network interfaceconfigure to communicate with a wide area network; a metropolitan areanetwork interface configured to communication with a metropolitan areanetwork; a local area network interface configured to communicate with alocal area network; a home area network interface configured tocommunicate with one or more devices; and a logic fabric configured toreceive provisioning information and, based on the provisioninginformation, to interface a set of sensor engines with a set of sensordevices, to switch communications between the set of sensor engines andthe set of sensor devices, and to route communications to the wide areanetwork via the wide area network interface, to the metropolitan areanetwork via the metropolitan area network interface, to the local areanetwork via the local area network interface, and to the home areanetwork via the home network area interface.
 2. The apparatus of claim 1further comprising a security engine, the security engine configured toprovide one or more of authentication services, firewall services,network address translation services, intrusion detection services, orvirtual private networking services.
 3. The apparatus of claim 2 furthercomprising a set of application modules for enabling identity andsecurity configuration of the security engine.
 4. The apparatus of claim1 further comprising a set of application modules for monitoring andrecording information associated with the set of sensor devices.
 5. Theapparatus of claim 1 further comprising a set of application modules forcontrolling the set of sensor devices.
 6. The apparatus of claim 1further comprising a set of application modules for providing webservices allowing access to information associated with the set ofsensor devices.
 7. The apparatus of claim 1 wherein the provisioninginformation comprises a set of policies, each policy defining acondition that needs to be satisfied in order to perform an actionindicated by the policy.
 8. The apparatus of claim 7 wherein the logicfabric is configured to determine whether the information associatedwith the set of sensor devices satisfies a policy in the set of policiesand to perform the action indicated by the policy based on thedetermination.
 9. The apparatus of claim 8 wherein the action indicatedby the policy comprises one or more of reading the information,switching the information, routing the information, performing a set ofsecurity functions, performing a set of reporting functions, configuringone or more of the sensor devices, generating a message, or raising andevent.
 10. A system for distributing a utility, the system comprising: autility network operations center; a utility network of distributiondevices for distributing the utility to one or more locations; and aplurality of metering devices coupled to the utility network, eachmetering device comprising: a wide area network interface; a local areanetwork interface; and a logic fabric configured to receive informationfrom the utility network operations center that enables the logic fabricto interface with one or more of the distribution devices, to switchcommunications between the one or more of the distribution devices, toroute communications via the wide area network interface, and to routecommunications via the local area network interface.
 11. The system ofclaim 10 wherein the network operations center is configured to provideweb-based configuration of each of the plurality of metering devices.12. The system of claim 10 wherein the network operations center isconfigured to generate a set of policies that provision each of theplurality of metering devices.
 13. The system of claim 10 wherein one ormore of the plurality of metering devices are configured to interfacewith electrical transmission devices.
 14. The system of claim 10 whereinone or more of the plurality of metering devices are configured tointerface with electrical generation devices,
 15. The system of claim 10wherein the logic fabric is configured to route communications betweenthe metering device and the network operations center over a wide areanetwork via the wide area network interface.
 16. The system of claim 10wherein the logic fabric is configured to route communications betweenthe metering device and one or more of the plurality of metering devicesover a wide area network via the wide area network interface.
 17. Thesystem of claim 10 wherein the logic fabric is configured to routecommunications between the network operations center and one or more ofthe plurality of metering devices over a wide area network via the widearea network interface.
 18. The system of claim 10 wherein the logicfabric is configured to route communications between the metering deviceand a host associated with a local area network via the local areanetwork interface.
 19. The system of claim 10 wherein the logic fabricis configured to route communications to an Internet service provide viaa home area network interface configured to enable access to theInternet to one or more devices associated with a customer's premises.20. The system of claim the logic fabric is configured to routecommunications via a metropolitan area network interface.
 21. A methodfor providing a utility, the method comprising: receiving provisioninginformation at a networked metering device; configuring a logic fabricat the networked metering device based on the provisioning information;determining information associated with one or more sensor devices usingthe logic fabric; switching communications using the logic fabricbetween a sensor engine and the one or more sensor devices; and routingcommunications using the logic fabric to a wide area network via a widearea network interface, to a metropolitan area network via ametropolitan area network interface, to a local area network via a localarea network interface, and to a home area network via a home areanetwork interface.
 22. An energy switch router comprising: means forreceiving provisioning information; means for configuring a sensorengine to interface with a set of sensor devices in response to theprovisioning information; means for configuring a switching engine toswitch communications associated with the sensor engine in response tothe provisioning information; means for configuring a routing engine torouting communications via a plurality of network interfaces in responseto the provisioning information; means for configuring a security engineto secure access to the sensor engine, the switching engine, and therouting engine in response to the provisioning information; means formonitoring and recording information associated with the sensor engine,the switching engine, and the routing engine; means for controlling thesensor engine, the switching engine, and the routing engine; and meansfor accessing information associated with the sensor engine, theswitching engine, and the routing engine via one or more web services.